CVE-2018-8174 – WindowsTechs.com

CobInt Trojan Removal Instructions — Restore Your Computer From Infections

Posted on September 13, 2018 by Martin Beltov

The CobInt Trojan is a newly devised malware that has been identified in several ongoing attacks. It is an upgraded version of a previous weapon that has the potential of infecting whole networks of computers. A dangerous characteristic of it…Read mo… Continue reading CobInt Trojan Removal Instructions — Restore Your Computer From Infections→

Slight changes to Trickbot delivery system

Posted on June 30, 2018 by Myonlinesecurity

Over the last week of so, there has been a bit of a change to the Trickbot delivery system. For quite a while they used the Microsoft Equation Editor Exploit CVE-2017-11882 in word docs to deliver the payload. Sometimes using 2 or 3 different exploit… Continue reading Slight changes to Trickbot delivery system→

Fake HMRC “Important : Outstanding Amount ” delivers Trickbot via CVE-2018-8174

Posted on June 26, 2018 by Myonlinesecurity

We have had a break from Trickbot hitting the UK in last week or so, that generally means that the criminals are experimenting with new delivery systems. The reappearance on Monday 25 June 2018 confirms this. I am not sure how successful this new syste… Continue reading Fake HMRC “Important : Outstanding Amount ” delivers Trickbot via CVE-2018-8174→

Fake Barclays Secured Message: New Message Received delivers Trickbot via CVE-2018-8174

Posted on June 26, 2018 by Myonlinesecurity

We have had a break from Trickbot hitting the UK in last week or so, that generally means that the criminals are experimenting with new delivery systems. The reappearance on Monday 25 June 2018 confirms this. I am not sure how successful this new sys… Continue reading Fake Barclays Secured Message: New Message Received delivers Trickbot via CVE-2018-8174→

Internet Explorer zero-day: browser is once again under attack

Posted on May 10, 2018 by Jérôme Segura

Internet Explorer is yet again leveraged for a zero-day exploit delivered via Office document—the first zero-day observed for IE in over two years.
Categories:

Exploits
Threat analysis

Tags: 0dayCVE-2018-8174zero day

Microsoft Patch Tuesday, May 2018 Edition

Posted on May 8, 2018 by BrianKrebs

Microsoft today released a bundle of security updates to fix at least 67 holes in its various Windows operating systems and related software, including one dangerous flaw that Microsoft warns is actively being exploited. Meanwhile, as it usually does on Microsoft’s Patch Tuesday — the second Tuesday of each month — Adobe has a new Flash Player update that addresses a single but critical security weakness.

First, the Flash Tuesday update, which brings Flash Player to v. 29.0.0.171. Some (present company included) would argue that Flash Player is in itself “a single but critical security weakness.” Nevertheless, Google Chrome and Internet Explorer/Edge ship with their own versions of Flash, which get updated automatically when new versions of these browsers are made available. Continue reading Microsoft Patch Tuesday, May 2018 Edition→